Home / Early Warning / Cybersecurity Highlights / Filter / Cybersecurity Highlights
Subscribe to INCIBE-CERT - Cybersecurity Highlights RSS

Cybersecurity Highlights

This section registers the most relevant incidents or public events related to the cybersecurity and information and communication technologies (ICT), in a way that a chronological history of them is available, together with their main links, references and information sources.
Post related to: Windows

End of support for Windows 7 and 8.1

01/03/2023
On 10 January 2023, security and technical support for Windows 7 Extended Security Update (ESU) and 8.1 came to an end. In both cases, support officially ended 3 years ago, but Microsoft decided to...
References: 
support.microsoft.com
support.microsoft.com
theverge.com
muycomputerpro.com
Tags: 
Microsoft
Windows

INCONTROLLER/PIPEDREAM malware targeting ICS/SCADA devices

04/13/2022
Several government agencies (DOE, CISA, NSA, and FBI) have issued a joint security advisory to warn about an APT threat, called INCONTROLLER/PIPEDREAM, which has been developed to attack industrial...
References: 
mandiant.com
dragos.com
dragos.com
wired.com
cisa.gov
computerweekly.com
techtarget.com
securityweek.com
reuters.com
incibe-cert.es
Tags: 
APT
Cybercrime
Incident
Industrial Control System
Internet
Malware
Other critical infrastructures
Tool
Windows

Microsoft warns that government-backed cybercriminals gained access to email systems

03/02/2021
The Microsoft Threat Intelligence Center (MSTIC) has reported multiple 0-day exploits used by a Chinese state-sponsored threat actor to attack local versions of Microsoft Exchange Server in a...
References: 
blogs.microsoft.com
microsoft.com
bleepingcomputer.com
20minutos.es
Tags: 
0day
Application
Cybercrime
Cyberespionage
Incident
Information leakage
Internet
Malware
Microsoft
Other critical infrastructures
Vulnerability
Windows

A threat actor commits a Mimecast certificate

01/12/2021
The email management software provider, Mimecast, has reported that one of its issued certificates, intended to authenticate its Mimecast Sync and Recover, Continuity Monitor and IEP (Internal...
References: 
mimecast.com
sec.gov
bleepingcomputer.com
zdnet.com
threatpost.com
blogs.masterhacks.net
mimecast.com
Tags: 
Encryption
Incident
Microsoft
Windows

Meltdown and Spectre: The vulnerabilities of modern processors

01/02/2018
An article in The Register revealed these potential vulnerabilities, initially reporting on their impact on Intel platforms, but later, a group of experts from Google's Project Zero, the companies...
References: 
theregister.co.uk
meltdownattack.com/
certsi.es
unaaldia.hispasec.com
xataka.com
elpais.com
bbc.com
krebsonsecurity.com
xataka.com
Tags: 
Linux
Vulnerability
Windows

Pages